[OAUTH-WG] Bls: OAuth Digest, Vol 74, Issue 38
Panca Agus Ananda <panca70@outlook.com> Fri, 05 December 2014 22:33 UTC
Return-Path: <panca70@outlook.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D9DEF1A6F84 for <oauth@ietfa.amsl.com>; Fri, 5 Dec 2014 14:33:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.649
X-Spam-Level:
X-Spam-Status: No, score=-1.649 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ofyPeZcfj1LQ for <oauth@ietfa.amsl.com>; Fri, 5 Dec 2014 14:33:39 -0800 (PST)
Received: from BLU004-OMC1S19.hotmail.com (blu004-omc1s19.hotmail.com [65.55.116.30]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 15A1A1A1EF6 for <oauth@ietf.org>; Fri, 5 Dec 2014 14:33:39 -0800 (PST)
Received: from BLU406-EAS156 ([65.55.116.8]) by BLU004-OMC1S19.hotmail.com over TLS secured channel with Microsoft SMTPSVC(7.5.7601.22751); Fri, 5 Dec 2014 14:33:38 -0800
X-TMN: [FbaEKLIR8KTMIJXkZnCItbDAWF5Q4eV1]
X-Originating-Email: [panca70@outlook.com]
Message-ID: <BLU406-EAS156A35A0FADC1291CFA7469A6790@phx.gbl>
Content-Type: multipart/alternative; boundary="_e10740d1-5516-498c-862b-d4ed4d78bc0d_"
MIME-Version: 1.0
X-Client-ID: 1004
X-Mailer: BlackBerry Email (10.2.1.3442)
Date: Sat, 06 Dec 2014 05:33:35 +0700
From: Panca Agus Ananda <panca70@outlook.com>
To: oauth@ietf.org, oauth@ietf.org
X-OriginalArrivalTime: 05 Dec 2014 22:33:38.0089 (UTC) FILETIME=[83532190:01D010DB]
Archived-At: http://mailarchive.ietf.org/arch/msg/oauth/N9fU9k9TKwOJkUJvtnlVWSFnVYk
Subject: [OAUTH-WG] Bls: OAuth Digest, Vol 74, Issue 38
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Dec 2014 22:33:41 -0000
Panca70 box.com Dikirim dari ponsel cerdas BlackBerry 10 saya dengan jaringan Telkomsel. Dari: oauth-request@ietf.org Terkirim: Sabtu, 6 Desember 2014 03.00 Ke: oauth@ietf.org Balas Ke: oauth@ietf.org Perihal: OAuth Digest, Vol 74, Issue 38 Send OAuth mailing list submissions to oauth@ietf.org To subscribe or unsubscribe via the World Wide Web, visit https://www.ietf.org/mailman/listinfo/oauth or, via email, send a message with subject or body 'help' to oauth-request@ietf.org You can reach the person managing the list at oauth-owner@ietf.org When replying, please edit your Subject line so it is more specific than "Re: Contents of OAuth digest..." Today's Topics: 1. Fwd: [websec] unbearable - new mailing list to discuss better than bearer tokens... (Hannes Tschofenig) ---------------------------------------------------------------------- Message: 1 Date: Fri, 05 Dec 2014 20:17:07 +0100 From: Hannes Tschofenig <hannes.tschofenig@gmx.net> To: "oauth@ietf.org" <oauth@ietf.org> Subject: [OAUTH-WG] Fwd: [websec] unbearable - new mailing list to discuss better than bearer tokens... Message-ID: <548204B3.5050903@gmx.net> Content-Type: text/plain; charset="windows-1252" -------- Forwarded Message -------- Subject: [websec] unbearable - new mailing list to discuss better than bearer tokens... Date: Fri, 05 Dec 2014 16:43:19 +0000 From: Stephen Farrell <stephen.farrell@cs.tcd.ie> Reply-To: Stephen Farrell <Stephen.Farrell@cs.tcd.ie> To: saag@ietf.org <saag@ietf.org>, websec <websec@ietf.org>, uta@ietf.org <uta@ietf.org>, ietf-http-wg@w3.org Group <ietf-http-wg@w3.org>, http-auth@ietf.org <http-auth@ietf.org> Hiya, Following up on the presentation at IETF-91 on this topic, [1] we've created a new list [2] for moving that along. The list description is: "This list is for discussion of proposals for doing better than bearer tokens (e.g. HTTP cookies, OAuth tokens etc.) for web applications. The specific goal is chartering a WG focused on preventing security token export and replay attacks." If you're interested please join in. Thanks to Vinod and Andrei for agreeing to admin the list. We'll kick off discussion in a few days when folks have had a chance to subscribe. Cheers, S. PS: Please don't reply-all to this, join the new list, wait a few days and then say what you need to say:-) [1] https://tools.ietf.org/agenda/91/slides/slides-91-uta-2.pdf [2] https://www.ietf.org/mailman/listinfo/unbearable _______________________________________________ websec mailing list websec@ietf.org https://www.ietf.org/mailman/listinfo/websec -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 513 bytes Desc: OpenPGP digital signature URL: <http://www.ietf.org/mail-archive/web/oauth/attachments/20141205/c398b24f/attachment.asc> ------------------------------ Subject: Digest Footer _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth ------------------------------ End of OAuth Digest, Vol 74, Issue 38 *************************************
- [OAUTH-WG] Bls: OAuth Digest, Vol 74, Issue 38 Panca Agus Ananda